Company DescriptionPayatu is a renowned security services provider with a team of passionate researchers and executors focused on delivering state-of-the-art security solutions. Recognized as an amazing workplace by Great Place to Work (India), Payatu offers security testing and assessment services with a priority on client security. From Internet of Things (IoT) to cloud security assessment, we ensure the security of our client's assets through expertise and research methodologies.Role DescriptionThis is a full-time hybrid role for a Security Consultant at Payatu, based in Mumbai with some work from home flexibility. The Security Consultant will be responsible for providing expert security consulting, application security, cybersecurity, network security, and information security services to clients on a day-to-day basis.Qualifications- Security Consulting and Cybersecurity skills - Application Security and Network Security skills - Knowledge of Information Security - Experience in conducting security assessments and risk analysis - Strong problem-solving and analytical skills - Certifications like CISSP, CISM, or equivalent is a plus - Bachelor's degree in Computer Science, Information Security, or related fieldWhat we look for outside work parameters?- Your expertise is your primary qualification, not your degree or certification. - Your publicly known contributions are your credentials. - Papers you have written, tools you have developed are your references. - Your write-up reflects your interests and ethics. - Your published exploits, your CTF scores, and hall of fame listings are the testimonies of your work. - Your research paper was published and presented at conferences. - You are learning from the community and enthusiastically contributing back.You are a perfect technical fit if:- Strong fundamental of application and network protocols. - Stronghold on Web application security concept and penetration testing skill. - Good command of at least one programming language. - Good understanding of OWASP Top 10 and other web-related vulnerabilities as well as logic flaws. - Hands-on experience in performing penetration testing of web-based applications preferably in the financial domain. - Good to have experience in working alongside the development/QA teams. - Good report writing and presentation skills. - Should be able to suggest optimum security improvements to application components.You Have All Our Desired Qualities, if:- Experience in web application and web service security assessment. - You have a history of publishing or presenting good research. - You have the knack of finding security bugs in everything you touch. - You like automating stuff. - You like writing tools. - You have excellent written and verbal communication skills and the ability to express your thoughts clearly. - You have the skill to articulate and present technical things in business language. - You can work independently as well as within a team and meet project schedules and deadlines. - You have strong problem solving, troubleshooting, and analysis skills. - You are passionate about your area of expertise and self-driven. - You are comfortable working in a dynamic and fast-paced work environment. - You are Self-driven, proactive, hardworking, team-player. - You are working on something on your own in your field apart from official work.Your everyday work will look like:- Security assessment of web application and web service on various platforms. - Back your findings with Proof-of-concept exploits. - Collect evidence and maintain a detailed write-up of the findings. - Understand and explain the results with impact on business and compliance status. - Explain and demonstrate vulnerabilities to application/system owners. - Provide appropriate remediation and mitigations of the identified vulnerabilities. - Individually or collaboratively review the system designs, source code, configurations, communications for security gaps. - Deliver results within stipulated timelines. - Sharpen your saw with continuous research, learning, training on the latest tools and techniques, keeping up with new research, and sharing the same with the ecosystem. - Communicate well using verbal and written skills, within and out of the team.
Job Title
Security Consultant